Markus Wuethrich discovered that sudo did not always verify the user when agroup was specified in the Runas_Spec. A local attacker could exploit thisto execute arbitrary code as root if sudo was configured to allow theattacker to use a program as a group when the attacker was not a part ofthat group. [More...]